Security/Privacy
- Network Access Control Adds Self-Service Registration for Users and Devices
-
2/7/2008
Lockdown Networks has upgraded its network access control (NAC) solution, Lockdown Enforcer, implementing new features that simplify initial setup and user and device registration. A NAC ensures that only authorized users and policy-compliant devices can be added to an enterprise networks and provides a centralized mechanism for responding to malware outbreaks and other security events.
- Flash Ads Serving up Malware on Popular Sites
-
2/7/2008
Malicious Flash banner ads have been surfacing on major web sites including Expedia.com, Rhapsody.com and MayoClinic.com in the last month, according to media reports. Users who click on the banners, which advertise a digital music service, a student dating service, and disk cleaning software, are redirected to Web sites that proceed to install malware on their PCs.
- SecureVue Rolls Out in Appliance Form
-
2/7/2008
eIQnetworks has released its flagship security and compliance product, SecureVue, in appliance versions, one a central server and the other a regional server. SecureVue 3000 Central Server has 1.8 terabyte storage capacity and supports up to 15,000 events per second. The SecureVue 2000 Regional Server-- deployed in conjunction with the SecureVue 3000 Central Server for distributed environments--offers 1 TB storage capacity and supports up to 6,000 events per second.
- St. Bernard Debuts h-Series Security Appliances
-
2/5/2008
St. Bernard Software this week launched a new line of security appliances, the new iPrism h-Series. Designed for enterprises of all sizes, the new models boast a 200 percent performance increase over their predecessors, according to the company.
- Web 2.0 Threats Loom Large for IT
-
1/25/2008
With the seemingly exponential growth of Web 2.0 technologies, IT professionals in education--and all other sectors, for that matter--face new challenges as control over technology slips away and moves into the hands of users.
- Data Security: 13 Breaches Reported So Far This Month
-
1/25/2008
A breach at Baylor University is the latest in a string of a more than a dozen data security incidents on United States campuses reported by a variety of sources so far in January 2008. According to a report yesterday in Baylor's campus newspaper, The Lariat, a student employee accessed the IDs of 526 users of the university's communications service, the Baylor Information Network. It was the second suspected "inside job" reported this month at a university.
- Macs Vulnerable to Malware? Say It Ain't So!
-
1/24/2008
IT security firm Sophos this week let the cat out of the bag, spilled the beans, and otherwise debunked the widely treasured myth that Macs are invulnerable to malware in its "Security Threat Report 2008," released Tuesday. The report said that, among other things, "in 2007 [organized] criminal gangs for the first time arrived at Apple's doorstep with the intention of stealing money." Proof, the firm said, that "hackers are extending their efforts beyond Windows."
- MPAA Rescinds College Piracy Figures, Remains Unrepentant on Policy
-
1/23/2008
Following a report from the Associate Press Tuesday, the Motion Picture Association of America Wednesday formally admitted that it made a blunder in its piracy statistics, which previously blamed college and university students for a whopping 44 percent of all movie industry losses attributable to piracy. It now says that figure is drastically lower than originally thought. But the association isn't backing down on its stance that the problem remains a "profound" one.
- NetSupport Debuts Desktop Mass Notification System
-
1/23/2008
School security solution provider NetSupport Wednesday debuted a new notification system targeted not at cell phones or e-mail clients, but at desktops. The new system, NetSupport Notify, is now in beta and is being shown off at NetSupport's booth at the FETC conference going on this week in Orlando, FL.
- Strongspace's 10-Day Crash Highlights Web Storage Risks
-
1/21/2008
For the last 10 days, Sausalito, CA-based online document and storage hosting company Joyent struggled to get its online secure document collaboration service, Strongspace, back online.
- SANS Flags Browsers, Botnets as Top Security 'Menaces'
-
1/17/2008
Research and education organization the SANS Institute this week revealed its list of the top menaces facing IT in the coming year. Echoing earlier reports from security watchdog organizations, the group's "Top-10 Cyber Security Menaces for 2008" cited Web 2.0 technologies, converged devices, botnets, and browser addons among the worst, with a heavy emphasis on consumerized technologies and the vulnerabilities they present.
- Oracle Databases Go Unpatched, Survey Finds
-
1/17/2008
Database administrators using Oracle Database products haven't been applying Critical Patch Updates, according to survey results described by Sentrigo Inc., which is in the business of providing database security software. Oracle typically releases its Critical Patch Updates on a quarterly basis, but these patches apparently are too much of a hassle to apply.
- CLASS Task Force To Release Report Today
-
1/15/2008
Oklahoma's Campus Life and Safety and Security (CLASS) Task Force is expected to release a report today detailing the status of security on the state's public post-secondary institutions. The report, if all goes according to plan, will be handed over to Oklahoma Gov. Brad Henry with recommendations for increased security spending and greater collaboration between higher ed and law enforcement and mental health professionals.
- Oklahoma Task Force Calls for Increased Campus Security Spending
-
1/11/2008
Oklahoma's Campus Life and Safety and Security (CLASS) Task Force next week will present Gov. Brad Henry with the results of its seven-month study on the state of campus security in Oklahoma. Among the recommendations, released in draft form this week, are calls for increased spending on security in post-secondary institutions and greater collaboration between higher education, law enforcement, and mental health professionals.
- Planning for the Next Disaster: Pandemic
-
1/11/2008
The experts tell us that a pandemic is inevitable. The only question is when it will happen. Is your organization ready? Can you keep essential IT functions running? What can you do to be prepared?
- U Georgia Looks into Server Breach
-
1/10/2008
The University of Georgia this week said it's investigating a security breach that might have exposed as many as 4,250 Social Security numbers, including those of several hundred current residents. The actual incident occured in late December and was the second discovery of a breach potentially exposing SSNs at the University of Georgia in 2007.
- Clemson Expands Campus Safety Services
-
1/10/2008
Clemson University in South Carolina has beefed up its campus safety systems with the expansion of emergency notification systems and a new university safety site that provides information on safety issues and signups for messaging services.
- Hamline U Adopts Hosted E-Mail Security
-
1/10/2008
Hamline University in Minnesota has switched its e-mail security over to the Proofpoint on Demand hosted service. The campus had previously housed its own system on premises but outgrew that system as the volume of spam and malware increased for it's approximately 10,000 e-mail accounts, according to the university.
- GWT: Advanced AJAX Security
-
1/3/2008
Billy Hoffman gave a talk on advanced AJAX security at the recent Google Web Toolkit (GWT) conference in San Francisco. Hoffman manages HP Security Labs, which was SPIDynamics until HP acquired it this year, along with Hoffman. He focuses on automated discovery of Web application vulnerabilities and Web crawling technologies.
- Trojans 2 Crimeware Exploits Web 2.0 Technologies
-
1/2/2008
Just when you thought life couldn't get any riskier for Web app developers, a new species of malicious code is poised to begin oozing onto our networks. Dubbed "Trojans 2.0" by Web security vendor Finjan, this new Web-borne threat leverages Web 2.0 technology--RSS feeds, social networks, blogs and mashups--to provide crackers with easy and scalable command-and-control schemes.
- 2008: Year of the Vista Patch?
-
12/17/2007
Just moments after Microsoft rolled out its last seven patches of 2007, security experts were prognosticating all over cyberspace, mainly pointing out the overwhelming number of fixes related to the Vista operating system in the December release alone.
- Montclair State Requires Students To Carry GPS Phones
-
12/14/2007
Montclair State University in New Jersey has issued a rule requiring students to own and carry school-distributed cell phones equipped with location-marking GPS technology, the school announced. The requirement is designed to add a layer of security for students, according to the school. A student threatened while walking on or near campus could activate a beacon on the cell phone. If the signal wasn't turned off after a predetermined period of time, campus security could use the GPS signal and Google Maps to locate the student.
- Things That Go Bump in the Night
-
12/14/2007
We've all developed and tested plans (or should have) for natural disasters--hurricanes in the Southeast, earthquakes in California, floods in our river valleys, and wildfires in the West, to name a few. Horrific as these events are, they are local or regional, affecting a few million people at the most. The rest of the country is still able to step in and provide aid. But what happens in the unlikely event of a disaster that impacts the entire country? Are we ready?
- FBI Arrests Penn Student in Global Botnet Crackdown
-
12/14/2007
The FBI has charged a University of Pennsylvania student and a New Zealand hacker as part of an international probe into the spread of botnets, large replicating malicious software networks, the Associated Press reported.
- Davenport U Offers Military CompSec, BioMetric Courses
-
12/14/2007
In January, Michigan's Davenport University will begin offering military and civilian employees of the United States Department of Defense online computer security and biometrics courses, among others, the Grand Rapids Press reported.
